Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
File: hkEGVA8wqdzfjvm-cv_vi9inLlw.mft (raw, json)
Hash identifier: T8gMoA0tpt6J2VmNRLzwn+pOhbuHZ+it9y5r6xk6FOk=
Subject key identifier: D8:10:97:68:50:B4:F8:0D:6F:22:A2:D0:1B:CB:C6:71:16:C5:6F:B8
Authority key identifier: 86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C
Certificate issuer: /CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c
Certificate serial: 019D37BFF4CCF82611EFBC12C9807E77F142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 04:00:19 +0000
Manifest this update: Sun 29 Mar 2026 04:00:19 +0000
Manifest next update: Mon 30 Mar 2026 04:00:19 +0000
Files and hashes: 1: YUe1ZMCdkqc_MHxs6Jml6xtaZmY.roa (hash: yfGpXBMwfuCn+DMxXYn3DWhF4inc0qBH11Kt+d+QCNw=)
2: hkEGVA8wqdzfjvm-cv_vi9inLlw.crl (hash: DIrH+8h/KTRni8NFAGHIbqqIAcPSir/lOe+6DO/3AnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:f4:cc:f8:26:11:ef:bc:12:c9:80:7e:77:f1:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c
Validity
Not Before: Mar 29 04:00:19 2026 GMT
Not After : Mar 30 04:00:19 2026 GMT
Subject: CN=d810976850b4f80d6f22a2d01bcbc67116c56fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:54:f6:e8:7d:b3:66:01:22:ae:b3:b7:4a:fc:
cf:ab:5a:a6:17:a7:61:e1:cd:32:e2:bc:d8:7f:c8:
40:31:6a:9e:e0:bd:8b:ee:c3:59:f0:e4:41:20:f9:
99:3f:be:ba:2e:a8:e6:f6:0d:aa:7a:fd:ae:31:b0:
3f:82:2e:f2:56:25:78:db:3c:d7:d6:95:2f:46:21:
5f:34:ad:30:59:4a:82:5a:c9:85:f5:28:50:12:f2:
fc:cb:f7:0d:03:e9:f1:e7:be:6f:86:5d:ec:a3:6d:
ae:59:ab:d7:e7:bc:4f:06:52:ec:ce:e9:dc:e4:b8:
0b:cc:16:62:78:cf:6b:07:44:db:1d:b9:3a:59:71:
2b:c9:19:2c:0e:dc:98:13:04:c8:3e:d2:39:3d:18:
93:8e:94:46:a2:2c:8c:d4:22:78:d3:7b:39:48:aa:
ed:b4:f6:b0:f0:78:c9:86:8e:48:90:37:8e:8c:53:
ec:dd:8b:22:ad:0c:24:65:2e:01:85:7f:f0:56:fb:
fe:de:25:d8:2f:3e:8d:dc:d0:e7:0b:30:02:f6:c7:
1d:b8:c2:78:b1:d5:72:02:67:e2:14:f1:54:ec:fd:
b2:ca:1d:6c:97:a7:8f:37:23:63:42:38:4f:7a:e7:
4f:f5:33:2a:8c:b1:46:5b:b9:c6:d2:8a:51:74:82:
aa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:10:97:68:50:B4:F8:0D:6F:22:A2:D0:1B:CB:C6:71:16:C5:6F:B8
X509v3 Authority Key Identifier:
keyid:86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:86:9d:d3:9d:dc:1f:6a:a2:0c:9a:f6:a1:0d:ef:61:62:48:
f1:38:99:9b:83:70:cf:6f:d5:e8:96:b2:dc:a8:ff:49:0d:78:
aa:08:b6:e9:65:57:d4:d7:81:de:6c:fa:b2:71:60:4c:7d:e5:
5d:f4:27:8a:71:06:f6:de:b8:84:94:62:5a:66:b1:06:cc:ad:
81:fe:ff:2e:5d:45:5b:e3:22:a9:01:1d:97:ed:52:e3:02:d1:
87:a3:f4:34:39:ea:f1:a1:88:0f:16:e4:f4:8b:50:3c:4f:98:
dd:da:e2:e7:bf:20:55:6e:7a:04:c8:80:8b:54:90:49:18:0e:
f2:54:80:8d:cf:d3:4a:32:bd:8b:cf:bf:8d:ab:9c:22:8d:2c:
7b:d6:dd:81:b2:95:b1:bf:cd:54:a6:05:c4:5d:a9:56:45:31:
65:42:8e:ec:2a:ed:31:78:ae:3e:b3:5c:e3:21:30:9c:6a:47:
4f:62:17:cf:60:93:fa:44:92:e7:62:ec:5b:46:b7:c5:70:74:
d1:0a:b7:56:c9:e2:51:a5:cf:af:70:e8:2f:bd:18:80:c0:cf:
49:c6:6f:9d:82:27:9b:15:ac:39:a7:f2:6f:95:23:6d:ca:d1:
f9:5e:aa:30:29:be:e0:d3:37:65:bb:da:5c:32:34:40:04:9b:
85:94:ca:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:11 2026 by rpki-client